Vulnerability Name:

CVE-2005-2087 (CCN-21193)

Assigned:2005-06-29
Published:2005-06-29
Updated:2021-07-23
Summary:Internet Explorer 5.01 SP4 up to 6 on various Windows operating systems, including IE 6.0.2900.2180 on Windows XP, allows remote attackers to cause a denial of service (application crash) and possibly execute arbitrary code via a web page with embedded CLSIDs that reference certain COM objects that are not ActiveX controls, as demonstrated using the JVIEW Profiler (Javaprxy.dll).
Note: the researcher says that the vendor could not reproduce this problem.
CVSS v3 Severity:9.0 Critical (CCN CVSS v3.1 Vector: CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:C/C:H/I:H/A:H)
Exploitability Metrics:Attack Vector (AV): Network
Attack Complexity (AC): High
Privileges Required (PR): None
User Interaction (UI): None
Scope:Scope (S): Changed
Impact Metrics:Confidentiality (C): High
Integrity (I): High
Availibility (A): High
CVSS v2 Severity:5.0 Medium (CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P)
4.1 Medium (Temporal CVSS v2 Vector: AV:N/AC:L/Au:N/C:N/I:N/A:P/E:F/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): Low
Authentication (Au): None
Impact Metrics:Confidentiality (C): None
Integrity (I): None
Availibility (A): Partial
7.6 High (CCN CVSS v2 Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C)
6.3 Medium (CCN Temporal CVSS v2 Vector: AV:N/AC:H/Au:N/C:C/I:C/A:C/E:F/RL:OF/RC:C)
Exploitability Metrics:Access Vector (AV): Network
Access Complexity (AC): High
Athentication (Au): None
Impact Metrics:Confidentiality (C): Complete
Integrity (I): Complete
Availibility (A): Complete
Vulnerability Type:CWE-399
Vulnerability Consequences:Gain Access
References:Source: CCN
Type: Full-Disclosure Mailing List, Wed Jun 29 2005 - 02:52:47 CDT
SEC-CONSULT SA-20050629-0

Source: MITRE
Type: CNA
CVE-2005-2087

Source: BUGTRAQ
Type: UNKNOWN
20050629 SEC-CONSULT SA-20050629-0

Source: CCN
Type: SA15891
Internet Explorer "javaprxy.dll" Memory Corruption Vulnerability

Source: SECUNIA
Type: Vendor Advisory
15891

Source: CCN
Type: SECTRACK ID: 1014329
Microsoft Internet Explorer `javaprxy.dll` COM Object Exception Handling Lets Remote Users Execute Arbitrary Code

Source: SECTRACK
Type: UNKNOWN
1014329

Source: AUSCERT
Type: UNKNOWN
ESB-2005.0489

Source: CCN
Type: CIAC INFORMATION BULLETIN P-247
Microsoft Vulnerability in JView Profiler

Source: CCN
Type: US-CERT VU#939605
JVIEW Profiler (javaprxy.dll) COM object contains an unspecified vulnerability

Source: CERT-VN
Type: US Government Resource
VU#939605

Source: CCN
Type: US-CERT VU#959049
Multiple COM objects cause memory corruption in Microsoft Internet Explorer

Source: CERT-VN
Type: US Government Resource
VU#959049

Source: CCN
Type: Microsoft Security Advisory (903144)
A COM Object (javaprxy.dll) Could Cause Internet Explorer to Unexpectedly Exit

Source: MISC
Type: UNKNOWN
http://www.microsoft.com/technet/security/advisory/903144.mspx

Source: CCN
Type: Microsoft Security Bulletin MS05-037
Vulnerability in JView Profiler Could Allow Remote Code Execution (903235)

Source: CCN
Type: Microsoft Security Bulletin MS05-038
Cumulative Security Update for Internet Explorer (896727)

Source: CCN
Type: Microsoft Security Bulletin MS05-052
Cumulative Security Update for Internet Explorer (896688)

Source: CCN
Type: Microsoft Security Bulletin MS05-054
Cumulative Security Update for Internet Explorer (905915)

Source: CCN
Type: Microsoft Security Bulletin MS06-004
Cumulative Security Update for Internet Explorer (910620)

Source: CCN
Type: Microsoft Security Bulletin MS06-013
Cumulative Security Update for Internet Explorer (912812)

Source: CCN
Type: Microsoft Security Bulletin MS06-021
Cumulative Security Update for Internet Explorer (916281)

Source: CCN
Type: Microsoft Security Bulletin MS06-042
Cumulative Security Update for Internet Explorer (918899)

Source: CCN
Type: Microsoft Security Bulletin MS06-067
Cumulative Security Update for Internet Explorer (922760)

Source: CCN
Type: Microsoft Security Bulletin MS06-072
Cumulative Security Update for Internet Explorer (925454)

Source: CCN
Type: Microsoft Security Bulletin MS07-016
Cumulative Security Update for Internet Explorer (928090)

Source: CCN
Type: Microsoft Security Bulletin MS07-027
Cumulative Security Update for Internet Explorer (931768)

Source: CCN
Type: Microsoft Security Bulletin MS07-033
Cumulative Security Update for Internet Explorer (933566)

Source: CCN
Type: Microsoft Security Bulletin MS07-045
Cumulative Security Update for Internet Explorer (937143)

Source: CCN
Type: Microsoft Security Bulletin MS07-057
Cumulative Security Update for Internet Explorer (939653)

Source: CCN
Type: Microsoft Security Bulletin MS07-069
Cumulative Security Update for Internet Explorer (942615)

Source: CCN
Type: Microsoft Security Bulletin MS08-010
Cumulative Security Update for Internet Explorer (944533)

Source: CCN
Type: Microsoft Security Bulletin MS08-024
Cumulative Security Update for Internet Explorer (947864)

Source: CCN
Type: Microsoft Security Bulletin MS08-031
Cumulative Security Update for Internet Explorer (950759)

Source: CCN
Type: Microsoft Security Bulletin MS08-045
Cumulative Security Update for Internet Explorer (953838)

Source: CCN
Type: Microsoft Security Bulletin MS08-058
Cumulative Security Update for Internet Explorer (956390)

Source: OSVDB
Type: UNKNOWN
17680

Source: CCN
Type: OSVDB ID: 17680
Microsoft IE JVIEW javaprxy.dll Memory Manipulation Arbitrary Code Execution

Source: CCN
Type: SEC-CONSULT Security Advisory 20050629-0
IE6 javaprxy.dll COM instantiation heap corruption vulnerability

Source: BUGTRAQ
Type: UNKNOWN
20050702 Microsoft Internet Explorer "javaprxy.dll" Code Execution Exploit

Source: BID
Type: UNKNOWN
14087

Source: CCN
Type: BID-14087
Microsoft Internet Explorer Javaprxy.DLL COM Object Instantiation Heap Overflow Vulnerability

Source: CERT
Type: US Government Resource
TA05-193A

Source: VUPEN
Type: Vendor Advisory
ADV-2005-0935

Source: CCN
Type: Internet Security Systems Protection Alert July 5, 2005
Microsoft Java Virtual Machine remote compromise

Source: MS
Type: UNKNOWN
MS05-037

Source: XF
Type: UNKNOWN
ie-javaprxydll-execute-code(21193)

Source: XF
Type: UNKNOWN
ie-javaprxydll-execute-code(21193)

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:1326

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:1506

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:1518

Source: OVAL
Type: UNKNOWN
oval:org.mitre.oval:def:793

Vulnerable Configuration:Configuration 1:
  • cpe:/a:microsoft:internet_explorer:5.01:sp4:*:*:*:*:*:*
  • OR cpe:/a:microsoft:internet_explorer:6.0:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:internet_explorer:6.0.2900.2180:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:ie:5.2.3:*:macintosh:*:*:*:*:*
  • OR cpe:/a:microsoft:internet_explorer:5.5:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:internet_explorer:5.1:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:ie:5.1:*:mac_os:*:*:*:*:*
  • OR cpe:/a:microsoft:ie:6:windows_server_2003_sp1:*:*:*:*:*:*
  • OR cpe:/a:microsoft:internet_explorer:5.5:preview:*:*:*:*:*:*
  • OR cpe:/a:microsoft:internet_explorer:5.5:sp1:*:*:*:*:*:*
  • OR cpe:/a:microsoft:internet_explorer:5.5:sp2:*:*:*:*:*:*

    • Configuration CCN 1:
  • cpe:/a:microsoft:internet_explorer:6.0:*:*:*:*:*:*:*
  • OR cpe:/a:microsoft:internet_explorer:5.5:sp2:*:*:*:*:*:*
  • OR cpe:/a:microsoft:ie:6.0:sp1:*:*:*:*:*:*
  • OR cpe:/a:microsoft:internet_explorer:5.01:sp4:*:*:*:*:*:*
  • AND
  • cpe:/o:microsoft:windows_xp:-:sp1:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_2000:-:sp4:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:2003_server::x64:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_2003_server:*:*:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:xp:sp2:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows_2003_server:-::~~~~itanium~:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:2003_server:sp1:*:*:*:*:*:*
  • OR cpe:/o:microsoft:windows:2003_server:sp1_itanium:*:*:*:*:*:*

    • * Denotes that component is vulnerable
    Oval Definitions
    Definition IDClassTitleLast Modified
    oval:org.mitre.oval:def:793
    V
    		IE6:XP,SP2 Java Proxy COM Object Instantiation Memory Corruption Vulnerability
    2014-02-24
    oval:org.mitre.oval:def:1326
    V
    		IE5.01,SP4 Java Proxy COM Object Instantiation Memory Corruption Vulnerability
    2014-02-24
    oval:org.mitre.oval:def:1506
    V
    		IE6,SP1 Java Proxy COM Object Instantiation Memory Corruption Vulnerability
    2014-02-24
    oval:org.mitre.oval:def:1518
    V
    		IE6:S03 Java Proxy COM Object Instantiation Memory Corruption Vulnerability
    2014-02-24
    BACK
    microsoft internet explorer 5.01 sp4
    microsoft internet explorer 6.0
    microsoft internet explorer 6.0.2900.2180
    microsoft ie 5.2.3
    microsoft internet explorer 5.5
    microsoft internet explorer 5.1
    microsoft ie 5.1
    microsoft ie 6 windows_server_2003_sp1
    microsoft internet explorer 5.5 preview
    microsoft internet explorer 5.5 sp1
    microsoft internet explorer 5.5 sp2
    microsoft ie 6.0
    microsoft ie 5.5 sp2
    microsoft ie 6.0 sp1
    microsoft ie 5.01 sp4
    microsoft windows xp - sp1
    microsoft windows 2000 - sp4
    microsoft windows 2003_server
    microsoft windows 2003 server *
    microsoft windows xp sp2
    microsoft windows 2003 server -
    microsoft windows 2003_server sp1
    microsoft windows 2003_server sp1_itanium